Sami FTP Server Multiple Commands Denial Of Service Vulnerability Network Vulnerability

Summary

This host is running Sami FTP Server and is prone to remote denial of service vulnerability.

Impact

Successful exploitation will allow remote attackers to deny the service.

Solution

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. For updates refer to http://www.karjasoft.com

Insight

The flaw exists in server, due to improper handling of input passed ot the commands (e.g., APPE, CWD, DELE, MKD, RMD, RETR, RNFR, RNTO, SIZE, and STOR).

Affected

KarjaSoft Sami FTP Server version 2.0.2 and prior

References

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5105
http://www.securityfocus.com/archive/1/archive/1/488198/100/200/threaded

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-5105, CVE-2008-5106
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

ClamAV Multiple Vulnerabilities (Win)
CUPS Multiple Vulnerabilities - Oct08
Check for RealServer DoS
Freeciv Multiple Remote Denial Of Service Vulnerabilities
CUPS Subscription Incorrectly uses Guest Account DoS Vulnerability

Sami FTP Server Multiple Commands Denial of Service Vulnerability

Take action and discover your vulnerabilities